Описание
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:samba:samba:1.9.18:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:caldera:openlinux:1.0:*:*:*:*:*:*:*
cpe:2.3:o:caldera:openlinux:1.1:*:*:*:*:*:*:*
cpe:2.3:o:caldera:openlinux:1.2:*:*:*:*:*:*:*
cpe:2.3:o:caldera:openlinux:1.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:linux:*:*:*:*:*:*:*:*
cpe:2.3:o:turbolinux:turbolinux:*:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
EPSS
Процентиль: 21%
0.00068
Низкий
4.6 Medium
CVSS2
Дефекты
NVD-CWE-Other